Skip to content

Configuration: Domain Takeover

Identifier: domain_takeover

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Domain takeover vulnerabilities occur when attackers can gain control of domains or subdomains due to expired services, misconfigured DNS settings, or abandoned cloud service configurations.

How we test: We check DNS records and cloud service configurations to identify subdomains pointing to services that are no longer active or properly secured. We test if these services can be claimed by attackers, which would allow them to redirect traffic or impersonate the legitimate site.

This issue lets an attacker redirect traffic or impersonate the legitimate site, which can lead to data theft or other harmful actions.

Configuration

Example

Example configuration:

---
security_tests:
  domain_takeover:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.